Senior Information Security Operations Center Analyst

Job Seekers can review the Job Applicant Privacy Policy by clickinghere.

Job Description:

Summary
The Senior Security Operations Center Analyst will be responsible for planning and implementing security measures to protect computer systems networks and data. This person will handle higher level security investigations and incidents. The Senior Security Operations Center Analyst will monitor network traffic for security events and perform triage analysis to identify security incidents.

The Senior Security Operations Center Analyst will receive Incidents and performs deep analysis; correlates with threat intelligence to identify the threat actor nature of the attack and systems or data affected. Defines and executes on strategy for containment remediation and recovery

The Senior Security Operations Center Analyst will deliver cyber intelligence services and material to information technology and business leaders. Identify new threat tactics techniques and procedures used by cyber threat actors. Publish actionable threat intelligence for business and technology management.

Essential Functions

• Participate in threat hunting activities to proactively search for threats in the enterprise environment.

• Participate in the creation and maintenance of use cases for recurring investigation/incident triggers in support of the 24/7 Cyber Threat Operations and Cyber Threat Management program.

• Participate in the creation and maintenance of playbooks used in response for investigation/incident triggers in support of 24/7 Cyber Threat Operations and Cyber Threat Management program.

• Act as coordinator in the event of escalated cyber threats/incidents for Tier 1 analysts.

• Assist in escalated computer security incidents and cyber investigations including computer forensics network forensics root cause analysis and malware analysis.

• Interface with other teams in Information Security (e.g. EIS Engineering Security Architecture GRC) along with information and liability risk officers and technology management to help guide cyber security strategy.

Additional Responsibilities

• Work with team members to enhance and enrich security monitoring tools with contextual information.

• Provide mentoring for junior level analysts.

• Adhere to all policies and standards as well as regulatory requirements regarding reporting and escalations.

• Publish actionable threat intelligence for business and technology management.

• Identify new threat tactics techniques and procedures used by cyber threat actors.

• Performs other duties as assigned.

Skills and Abilities

• Ability to lead and persuade individuals and small teams on ideas concepts and opportunities

• Critical thinking and problem solving skills

• Demonstrated proficiency in basic computer applications such as Microsoft Office software products

• Ability to effectively communicate business risk as it relates to information security

• Expertise in incident response and system monitoring and analysis

• Knowledge of the incident handling procedures and intrusion analysis models advanced required

• Foundational knowledge of processes procedures and methods to research analyze and disseminate threat intelligence information advanced required

• Demonstrated advanced knowledge of cyber security operations with a focus area in two or more of the following: Security Operations Center (SOC) operations Intrusion Detection/Intrusion Prevention Systems (IDS/IPS) Security Information and Event Management (SIEM) use threats (including Advanced Persistent Threat (APT) insider) vulnerabilities and exploits; incident response investigations and remediation advanced required

• Broad knowledge of general IT with a focus area in two or more of the following areas: operating systems networking computer programing web development or database administration advanced required

Qualifications

• Bachelors degree required in Information Assurance Computer Science Engineering or related technical field.

• Three (3) years or more experience in information security administration offensive tactics monitoring and IR. required

• Three (3) years or more experience related security systems administration with endpoint network application and host-based security solutions. required

• Two (2) years or more Cloud computing (e.g. Amazon Web Services Google Cloud Platform or Microsoft Azure) security configuration and management experience preferred. preferred

• Knowledge of the incident handling procedures and intrusion analysis models. advanced required

• Foundational knowledge of processes procedures and methods to research analyze and disseminate threat intelligence information. advanced required

• Demonstrated advanced knowledge of cyber security operations with a focus area in two or more of the following: Security Operations Center (SOC) operations Intrusion Detection/Intrusion Prevention Systems (IDS/IPS) Security Information and Event Management (SIEM) use threats (including Advanced Persistent Threat (APT) insider) vulnerabilities and exploits; incident response investigations and remediation. advanced required

• Broad knowledge of general IT with a focus area in two or more of the following areas: operating systems networking computer programing web development or database administration. advanced required

• Other Information Risk Privacy or Security Certification (CISSP CCSK CCSP PCSM)

Travel
1-10%

DOT Regulated
No

Job Category

Compensation Information:

Thecompensationofferedtoa candidate may be influenced by a variety of factors including the candidates relevant experience; education including relevant degrees or certifications; work location; market data/ranges; internal equity; internal salary ranges; position may also be eligible to receive an annual bonus commission and/or long-term incentive plan based on the level and/ for the position are below:

Pay Type:

Minimum Pay Range:

Maximum Pay Range:

Benefits Information:

For all Full-time positions only: Ryder offers comprehensive health and welfare benefits to include medical prescription dental vision life insurance and disability insurance options as well as paid time off for vacation illness bereavement family and parental leave and a tax-advantaged 401(k) retirement savings plan.

For more information about benefits click here to download the comprehensive benefits summary.

Ryder is proud to be an Equal Opportunity Employer and Drug Free workplace.

All qualified applicants will receive consideration for employment without regard to race religion color national origin sex sexual orientation gender identity age status as a protected veteran among other things or status as a qualified individual with disability.

Important Note:

Some positions require additional screening that may include employment and education verification; motor vehicle records check and a road test; and/or badging or background requirements of the customer to which you are assigned.

Security Notice for Applicants:

Ryder will only communicate with an applicant directly from a @ email address and will never conduct an interview online through a chat type forum messaging app (such as WhatsApp or Telegram) or via an online questionnaire. During an interview Ryder will never ask for any form of payment or banking details and will never solicit personal information outside of the formal submitted application through you have any questions regarding the application process or to verify the legitimacy of an interview or Ryder representative please contact Ryder at.

Current Employees:

If you are a current employee at Ryder please click here to log in to Workday to apply using the internal application process.

Job Seekers can review the Job Applicant Privacy Policy by clickinghere.